Exploit for Use After Free in Redis CVE-2026-23479

Name: Exploit for Use After Free in Redis CVE-2026-23479
Rating: 5 (9 reviews)
2026-06-11 | CVSS 8.8
## https://sploitus.com/exploit?id=B4BD65AE-C56B-5415-BFF0-4D29FA8BEAA1
# CVE-2026-23479 Scanner

Redis Use-After-Free vulnerability (CVE-2026-23479) detection tool.

Automatically checks Redis instances for vulnerability, misconfigurations, and exposure risks.

## Affected Versions

| Branch | Affected | Fixed |
|--------|----------|-------|
| 7.2.x | 7.2.0 - 7.2.13 | 7.2.14 |
| 7.4.x | 7.4.0 - 7.4.8 | 7.4.9 |
| 8.2.x | 8.2.0 - 8.2.5 | 8.2.6 |
| 8.4.x | 8.4.0 - 8.4.2 | 8.4.3 |
| 8.6.x | 8.6.0 - 8.6.2 | 8.6.3 |

## Install

```bash
pip install redis
```

## Usage

```bash
# Scan single target
python redis_cve_scanner.py 192.168.1.100

# Scan with port
python redis_cve_scanner.py 192.168.1.100 -p 6380

# Scan with auth
python redis_cve_scanner.py 192.168.1.100 -a yourpassword

# JSON output
python redis_cve_scanner.py 192.168.1.100 -f json

# Multiple targets
python redis_cve_scanner.py host1 host2 host3:6380

# Targets from file
python redis_cve_scanner.py @targets.txt

# Save to file
python redis_cve_scanner.py 192.168.1.100 -o results.json -f json
```

## Exit Codes

| Code | Meaning |
|------|---------|
| 0 | No vulnerable instances found |
| 2 | Vulnerable instances detected |
| 1 | Error |

## Checks Performed

1. **Version Check** - Compare against known affected ranges
2. **Auth Check** - Detect unauthenticated access
3. **ACL Check** - Evaluate user permissions
4. **Exposure Check** - Analyze bind configuration
5. **Mitigation Check** - Look for EVAL/CONFIG restrictions

## License

MIT